Privacy Policy
Last updated: 30 June 2026
This Privacy Policy explains how the owners of Villa Tisa and Villa Aster ("we", "us", "our") collect, use, and protect your personal data when you visit this website or submit a booking inquiry. Both villas are privately owned holiday properties. We are committed to protecting your privacy in accordance with the EU General Data Protection Regulation (GDPR) and applicable Croatian law.
1. Who we are
The villas are privately owned and let by their owners. The person responsible for your personal data (the data controller) can be contacted at:
Ville Privlaka — privately owned by Bošnjak family
Privlaka, Zadar County, Croatia
Email: villa.tisa80@gmail.com
2. What data we collect
When you submit a booking inquiry through our website, we collect:
- Identity and contact data — your name, email address, and phone number (if provided)
- Booking details — your requested villa, check-in and check-out dates, and number of guests
- Any message you choose to include with your inquiry
When you browse the website, we may also collect limited technical data such as your IP address, browser type, and pages visited, where necessary for the operation and security of the site.
3. How we use your data
We process your personal data to:
- Respond to your inquiry and manage your booking
- Communicate with you about your stay
- Comply with our legal and accounting obligations
- Maintain the security and proper functioning of our website
4. Legal basis for processing
We rely on the following legal bases under the GDPR:
- Performance of a contract — to process your inquiry and arrange your stay
- Legitimate interests — to operate, secure, and improve our website
- Legal obligation — to meet tax and record-keeping requirements
- Consent — where you have given it, for example for marketing communications
5. How long we keep your data
We retain inquiry and booking data only for as long as necessary to fulfil the purposes described above, including to satisfy any legal, accounting, or reporting requirements. Inquiries that do not lead to a booking are deleted within a reasonable period.
6. Sharing your data
We do not sell your personal data. We may share it only with trusted service providers who help us run the rental — such as our email and hosting providers — and only to the extent necessary. These providers are bound to protect your data and process it only on our instructions.
7. Cookies
Our website uses only essential cookies required for it to function. We do not use advertising or non-essential tracking cookies. Embedded content, such as Google Maps, may set its own cookies governed by the provider's privacy policy.
8. Your rights
Under the GDPR you have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your data
- Object to or restrict our processing of your data
- Request a copy of your data in a portable format
- Withdraw consent at any time, where processing is based on consent
To exercise any of these rights, contact us at villa.tisa80@gmail.com. You also have the right to lodge a complaint with the Croatian Personal Data Protection Agency (AZOP).
9. Changes to this policy
We may update this Privacy Policy from time to time. The latest version will always be available on this page, with the "last updated" date revised accordingly.
10. Contact
If you have any questions about this Privacy Policy or how we handle your data, please contact us at villa.tisa80@gmail.com.